CVE-2019-14284
CVSS v3.0
6.2 (Medium)
CVSS v2.0
2.1 (Low)
EPSS
0.09 % (39th)
Affected Products
1
Advisories
25
In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make F_SECT_PER_TRACK be zero. Next, the floppy format operation should be called. It can be triggered by an unprivileged local user even when a floppy disk has not been inserted. NOTE: QEMU creates the floppy device by default.
Weaknesses
- CWE-369
- Divide By Zero
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2019-07-26 13:15:13
(5 years ago) - Updated Date
-
2019-08-11 23:15:12
(5 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...